Security devices, systems, and methods for dynamic transaction cards

ABSTRACT

A dynamic transaction card including: one or more light emitting elements; a transceiver; and an embedded microprocessor configured to: receive, from a transaction terminal, a location information corresponding to a current location of the transaction terminal; wirelessly transmit, via the transceiver and to a mobile device, the location information; receive an indication that a location-specific security concern exists; and in response to receiving the indication, control the one or more light emitting elements to display a visual indication corresponding to the location-specific security concern.

CROSS-REFERENCE TO RELATED APPLICATIONS

This application is a divisional of, and claims priority under 35 U.S.C.§ 120 to, U.S. patent application Ser. No. 16/919,615, filed Jul. 2,2020, the entire contents of which are fully incorporated herein byreference.

FIELD

The present disclosure relates to smart cards, and, more particularly,devices, systems., and methods that utilize networked systems to providesecurity to smart cards.

BACKGROUND

In the related art, transaction cards, such as credit cards or debitcards, include a magnetic stripe capable of storing limited data.Transaction cards may also include EuroPay-MasterCard-Visa (“EMV”) cardshaving an integrated circuit, or EMV chip. The EMV chip in an EMV cardmay communicate with EMV-compliant terminals to conduct securetransactions. For example, information may be exchanged between the cardand the terminal via the EMV chip, which may also require the entry of aPIN to complete a transaction. The EMV chip may dynamically store datapreviously stored on a magnetic strip, allowing for increased securityassociated with transaction cards. However, even with an EMV chip,related art transaction cards have very limited capabilities.

More recently, certain dynamic transaction cards have been provided inthe related art that provide certain further capabilities, such as theability to link to, and exchange information with, a mobile device.However, the related art has failed to provide advanced connectivity andsecurity features. Accordingly, aspects of the present disclosure expandupon the dynamic transaction card to provide additional capabilities.

SUMMARY

In an embodiment, there is provided a dynamic transaction cardincluding: one or more light emitting elements; a transceiver; and anembedded microprocessor configured to: receive, from a transactionterminal, a location information corresponding to a current location ofthe transaction terminal; wirelessly transmit, via the transceiver andto a mobile device, the location information; receive an indication thata location-specific security concern exists; and in response toreceiving the indication, control the one or more light emittingelements to display a visual indication corresponding to thelocation-specific security concern.

In an embodiment, there is provided a method including: receiving, at abackend system, a transaction request for a dynamic transaction card;receiving, at the backend system, location information corresponding tothe transaction request; determining, by the backend system, that alocation-specific security concern exists; and instructing the dynamictransaction card to output a visual indication that thelocation-specific security concern exists.

In an embodiment, there is provided a mobile device including: atransceiver configured to communicate with a dynamic transaction card; aprocessor; and a memory having stored thereon computer instructionsthat, when executed by the processor, control the processor to:determine a location information associated with a current location ofthe dynamic transaction card; output, to a backend system, the locationinformation; receive, from the backend system, an indication that alocation-specific security concern exists; and output, to the dynamictransaction card, an instruction to display a visual indication that thelocation-specific security concern exists.

Further features of the disclosed design, and the advantages offeredthereby, are explained in greater detail hereinafter with reference tospecific embodiments illustrated in the accompanying drawings, whereinlike elements are indicated be like reference designators.

BRIEF DESCRIPTION OF THE DRAWINGS

Reference will now be made to the accompanying drawings, which are notnecessarily drawn to scale, and which are incorporated into andconstitute a portion of this disclosure, illustrate variousimplementations and aspects of the disclosed technology and, togetherwith the description, serve to explain the principles of the disclosedtechnology. In the drawings:

FIG. 1 is a diagram of an example system environment for implementingcertain aspects of the present disclosure;

FIG. 2 depicts an example a dynamic transaction card according tocertain aspects of the present disclosure;

FIG. 3 depicts an example of a system including a dynamic transactioncard according to certain aspects of the disclosure;

FIGS. 4-7 are timing diagrams of example methods according toembodiments.

DETAILED DESCRIPTION

Some implementations of the disclosed technology will be described morefully with reference to the accompanying drawings. This disclosedtechnology may, however, be embodied in many different forms and shouldnot be construed as limited to the implementations set forth herein. Thecomponents described hereinafter as making up various elements of thedisclosed technology are intended to be illustrative and notrestrictive. Many suitable components that would perform the same orsimilar functions as components described herein are intended to beembraced within the scope of the disclosed electronic devices andmethods. Such other components not described herein may include, but arenot limited to, for example, components developed after development ofthe disclosed technology.

It is also to be understood that the mention of one or more method stepsdoes not preclude the presence of additional method steps or interveningmethod steps between those steps expressly identified. Similarly, it isalso to be understood that the mention of one or more components in adevice or system does not preclude the presence of additional componentsor intervening components between those components expressly identified.

Various embodiments of the present disclosure provide forlocation-specific alerts through a dynamic transaction card. Forinstance, a mobile device may determine a current location andcommunicate with a backend server to determine if any location-specificsecurity concerns exist. If so, the mobile device may pair with thedynamic transaction card to issue an alert. The dynamic transaction cardmay retrieve the location information from a transaction terminal andprovide the location information to the mobile device. The dynamictransaction card may receive a temporary account number to utilize fortransactions conducted where location-specific security concerns exist.

Reference will now be made in detail to example embodiments of thedisclosed technology, examples of which are illustrated in theaccompanying drawings and disclosed herein. Wherever convenient, thesame references numbers will be used throughout the drawings to refer tothe same or like parts.

FIG. 1 depicts an example system 100 including a dynamic transactioncard 120. As shown in FIG. 1 , an example system 100 may include one ormore dynamic transaction cards 120, one or more account provider systems130, one or more user devices 140, and one or more merchant systems 150connected over one or more networks 110.

For example, network 110 may be one or more of a wireless network, awired network or any combination of wireless network and wired network.For example, network 110 may include one or more of a fiber opticsnetwork, a passive optical network, a cable network, an Internetnetwork, a satellite network, a wireless LAN, a Global System for MobileCommunication (“GSM”), a Personal Communication Service (“PCS”), aPersonal Area Network (“PAN”), Wireless Application Protocol (WAP),Multimedia Messaging Service (MMS), Enhanced Messaging Service (EMS),Short Message Service (SMS), Time Division Multiplexing (TDM) basedsystems, Code Division Multiple Access (CDMA) based systems, D-AMPS,Wi-Fi, Fixed Wireless Data, IEEE 802.11b, 802.15.1, 802.11n and 802.11g,a Bluetooth network, or any other wired or wireless network fortransmitting and receiving a data signal.

User device 140 and/or merchant system 150 may include, for example, oneor more mobile devices, such as, for example, personal digitalassistants (PDA), tablet computers and/or electronic readers (e.g.,iPad, Kindle Fire, Playbook, Touchpad, etc.), wearable devices (e.g.,Google Glass), telephony devices, smartphones, cameras, music playingdevices (e.g., iPod, etc.), televisions, set-top-box devices, and thelike.

Account provider system 130, user device 140, and/or merchant system 150also may include a network-enabled computer system and/or device. Asreferred to herein, a network-enabled computer system and/or device mayinclude, but is not limited to: e.g., any computer device, orcommunications device including, e.g., a server, a network appliance, apersonal computer (PC), a workstation, a mobile device, a phone, ahandheld PC, a personal digital assistant (PDA), a thin client, a fatclient, an Internet browser, or other device. The network-enabledcomputer systems may execute one or more software applications to, forexample, receive data as input from an entity accessing thenetwork-enabled computer system, process received data, transmit dataover a network, and receive data over a network.

Account provider system 130, user device 140, and/or merchant system 150may include at least one central processing unit (CPU), which may beconfigured to execute computer program instructions to perform variousprocesses and methods. Account provider system 130, user device 140,and/or merchant system 150 may include data storage, including forexample, random access memory (RAM) and read only memory (ROM), whichmay be configured to access and store data and information and computerprogram instructions.

As depicted in FIG. 1 , system 100 may include a dynamic transactioncard 120. A dynamic transaction card may include any transaction cardthat is able to display alerts, notifications, and/or other output to acard holder via a display and/or LED lighting 126 and/or receive inputto interact with the dynamic transaction card via, for example, one ormore sensors 124. For example, sensor 124 may include a capacitive touchsensor, a piezoelectric sensor, an inductive sensor, load cells, a lightsensor, a temperature sensor, a resistive touchscreen, including forexample an analogue matrix real (AMR) sensors, and/or the like. Sensors124 may include accelerometers and/or photosensors to detect motioninput.

Dynamic transaction card 120 also may be composed of various materialsthat enable the entire exterior surface of card 120 to act as a sensor.A dynamic transaction card may be able to communicate with, for example,a mobile device using Bluetooth, NFC WiFi Direct and/or other relatedtechnologies. For example, communications between a dynamic transactioncard and a mobile device may include methods, systems, and devicesdescribed in U.S. patent application Ser. No. 14/338,423 filed on Jul.23, 2014, the entire contents of which are incorporated herein byreference.

A dynamic transaction card may be able to communicate with EMV terminalsvia contact points positions on the exterior of card 120, such as thosepositions on an EMV chip 122 located on the dynamic transaction card 120or an EMV plate positions on the exterior of card 120 connected to anEMV processor within card 120. For example, contact points position onthe exterior of card 120 may be directly connected and adjacent to anEMV processor EMV chip 122). In another example, the contact pointspositions on the exterior of card 120 may be connected to an EMVprocessor sing a form of wired connection (e.g., electrical wiring,plastic jumpers, and/or the like) such that the EMV processor may bepositioned at any location in the interior of card 120 as described inU.S. Provisional Application 62/270,648, the entire contents of whichare incorporated herein by reference.

A dynamic transaction card 120 may also include hardware components toprovide contactless payments and/or communications. Example componentsof a dynamic transaction card 120 are discussed below in greater detailwith reference to FIG. 2 .

Account provider system 130 may include systems associated with, forexample, a banking service company such as Capital One®, Bank ofAmerica®, Citibank®, Wells Fargo®, various community banks, and thelike, as well as a number of other financial institutions such as Visa®,MasterCard®, and American Express® that issue credit and/or debit cards,for example, as transaction cards. Account provider system 130 mayinclude and/or be connected to one or more computer systems and networksto process transactions. Account provider system 130 may include systemsassociated with financial institutions that issue transaction cards,such as a dynamic transaction card 120, and maintains a contract withcardholders for repayment. In various embodiments, an account providersystem 130 may issue credit, debit, and/or stored value cards, forexample. Account provider system 130 may include, by way of example andnot limitation, depository institutions (e.g., banks, credit unions,building societies, trust companies, mortgage loan companies, pre-paidgift cards or credit cards, etc.), contractual institutions (e.g.,insurance companies, pension funds, mutual funds, etc.), investmentinstitutions investment banks, underwriters, brokerage funds, etc.), andother non-bank financial institutions (e.g., pawn shops or brokers,cashier's check issuers, insurance firms, check-cashing locations,payday lending, currency exchanges, microloan organizations,crowd-funding or crowd-sourcing entities, third-party paymentprocessors, etc.).

Account provider system 130 may include an input/output device 132, atransaction system 134, and a dynamic transaction card system 136.Input/output device 132 may include for example, I/O devices, which maybe configured to provide input and/or output to account provider system130 (e.g., keyboard, mouse, display, speakers, printers, modems, networkcards, etc.). Input/output device 132 also may include antennas, networkinterfaces that may provide or enable wireless and/or wire line digitaland/or analog interface to one or more networks, such as network 110,over one or more network connections.

Transaction system 134 may include various hardware and softwarecomponents to communicate between a merchant, acquisition system,account provider system, and/or a user device to process a transaction,such as a user purchase. Dynamic transaction card system 136 may includevarious hardware and software components, such as data storage (notshown) to store data associated with a dynamic transaction card (e.g.,card number, account type, account balance, account limits, budget data,recent transactions, pairing data such as time and date of pairing witha mobile device, and the like) and cardholder data (e.g., cardholdername, address, phone number(s), email address, demographic data, and thelike).

A user device 140 may be any device capable of communicating with atransaction card 120 via, for example, Bluetooth technology, NFCtechnology, WiFi Direct technology, and/or the like and execute variousfunctions to transmit and receive account data (e.g., card number,account type, account balance, account limits, budget data, recenttransactions, and/or the like) associated with dynamic transaction card120. For example, user device 140 could be a mobile device, for example,a smartphone or like device.

User device 140 may include for example, an input/output device 142, anda transaction system 144, and a dynamic transaction card system 146.Input/output device 142 may include, for example, a Bluetooth device orchipset with a Bluetooth transceiver, a chip, and an antenna (e.g.,Bluetooth/NFC technology 148). The transceiver may transmit and receiveinformation via the antenna and an interface. The chip may include amicroprocessor that stores and processes information specific to adynamic transaction device and provides device control functionality.Device control functionality may include connection creation,frequency-hopping sequence selection and timing, power control, securitycontrol, polling, packet processing, and the like. The device controlfunctionality and other Bluetooth-related functionality may be supportedusing a Bluetooth API provided by the platform associated with the userdevice 140 (e.g., The Android platform, the iOS platform). Using aBluetooth API, an application stored on a user device 140 (e.g., abanking application, a financial account application, etc.) or thedevice may be able to scan for other Bluetooth devices (e.g., a dynamictransaction card 120), query the local Bluetooth adapter for pairedBluetooth devices, establish RFCOMM channels, connect to other devicesthrough service discovery, transfer data to and from other devices or atransaction card 120, and manage multiple connections. A Bluetooth APIused in the methods, systems, and devices described herein may includean API for Bluetooth Low Energy (BLE) to provide significantly lowerpower consumption and allow a user device 140 to communicate with BLEdevices that have low power requirements, such as dynamic transactioncard 120.

Input/output device 142 may include for example, I/O devices, which maybe configured to provide input and/or output to user device 140 (e.g.,keyboard, mouse, display, speakers, printers, modems, network cards,etc.). Input/output device 142 also may include antennas, networkinterfaces that may provide or enable wireless and/or wire line digitaland/or analog interface to one or more networks, such as network 110,over one or more network connections, a power source that provides anappropriate alternating current (AC) or direct current (DC) to power oneor more components of user device 140, and a bus that allowscommunication among the various components of user device 140.Input/output device 142 may include a display, which may include forexample output devices, such as a printer, display screen (e.g.,monitor, television, and the like), speakers, projector, and the like.Although not shown, each user device 140 may include one or moreencoders and/or decoders, one or more interleavers, one or more circularbuffers, one or more multiplexers and/or de-multiplexers, one or morepermuters and/or depermuters, one or more encryption and/or decryptionunits, one or more modulation and/or demodulation units, one or morearithmetic logic units and/or their constituent parts, and the like.

Dynamic transaction card system 146 may work with input/output device142 to generate and receive account data associated with a dynamictransaction card 120. For example, dynamic transaction card system mayinclude various hardware and software components such as a processor anddata storage to store dynamic transaction card data (e.g., cardholdername, address, phone number(s), email address, demographic data, cardnumber, account type, account balance, account limits, budget data,recent transactions and the like).

Transaction system 144 may include various hardware and softwarecomponents, such as data storage and a processor that may work withinput/output device 142 to communicate between a merchant, acquisitionsystem, account provider system, and/or a mobile device to process atransaction, such as a user purchase.

User device 140 may also include various software components, such asmobile banking applications and applications associated with a dynamictransaction card 120, which may include card on/off features that allowa cardholder associated with a user device 140 to enable and disable atransaction card. For example, a card holder may use, for example, amobile banking application stored on a user device 140 to disable and/orenable accounts associated with a dynamic transaction card 120. In thisexample, a dynamic transaction card 120 may have account data pre-storedon the dynamic transaction card 120 to associate a number of differentaccounts with the dynamic transaction card (e.g., debit card, creditcard, prepaid card, and/or the like). If a card holder has a creditaccount established and desires to establish a debit card associatedwith the dynamic transaction card 120, the card holder may use a userdevice 140 (e.g., a mobile device) and/or dynamic transaction card 120to activate the inactive debit account on the dynamic transaction card120.

Merchant system 150 may include, among other components, a Point-of-Sale(PoS) device, an input/output device 152 (e.g., a transceiver), and anauthorization system 154. Merchant system 150 may also include datastorage (not shown) to store transaction data and/or approval of chargesbetween an cardholder and the merchant associated with the PoS device.

FIG. 2 is an exploded diagram of dynamic transaction card 120 accordingto an example. As shown in FIG. 2 , dynamic transaction card 120 mayinclude a top output layer 202. The top output layer may be a filmcovering, a plastic covering, and/or the like. The top output layer 202may be constructed of scratch-resistant and/or scratch-proof materials.A dynamic transaction card 120 may further include a top protectivelayer 204, such as a clear scratch-resistant coating and/orscratch-proof material to protect the underlying components. Dynamictransaction card may include a potting 206 or filler epoxy around theelectrical components to provide strength and/or water resistance. Apotting 206 may include a light guide, which may be constructed ofoptical grade materials such as acrylic, resin, polycarbonate, epoxies,and/or glass. Potting 206 may also include injection molding, such asover molding and/or multi-shot to encapsulate the components of card120. Dynamic transaction card 120 may further include an applet 208(e.g., a Java Applet) and applet integration 210 (e.g., Java Appletintegration). Applet 208 may include code that executes payments, suchas payment made using EMV chip 122. Applet integration 210 may includecoded interfaces to allow the microcontroller to interact with the EMVchip 122.

An EMV chip 122 may include a number of contacts that may interact withand/or be connected to a terminal configured to read data stored on aprocessor of an EMV chip 122. During an EMV transaction, applicationcryptograms may be used to send and receive data packets between thedynamic transaction card 120 and a terminal, such as a merchantterminal, which may be similar to a terminal included at a merchant 150.For example, data packets may include user authentication informationwhich an acquisition system and/or issuing financial institution may useto authenticate a transaction card 120 during a transaction. Variouscryptographic protocols and/or methods may be used in this datatransmission and reception process. Moreover, during a transactionissuing financial institutions and/or acquisition systems may returnscript commands to the EMV chip 122 via a terminal. These scriptcommands and/or data packets may be transmitted between parties over anetwork. Script commands may be used, for example, to blocktransactions, change transaction data stored on the EMV chip (e.g.,transaction history, account limits, account balance, and/or the like).Offline data authentication may also take place using, for examplepublic key cryptography to perform payment data authentication. Forexample, offline data authentication may use Static Data Authentication(SDA), Dynamic Data Authentication (DDA), and/or Combined DataAuthentication (CDA).

Dynamic transaction card 120 may also include one or more sensors 124 toreceive input. Sensors 124 may include an activation sensor and/or anoperation sensor, which may be combined and/or separate. An activationsensor 124 may activate the dynamic transaction card 120 and anoperation sensor may instruct the dynamic transaction card 120 toperform an action based on the received input. An activation sensor mayrequire a security input, such as a biometric input (e.g., fingerprint,eye scan, voice recognition, and/or the like), input indicative of apaired mobile device (e.g., BLE and/or Bluetooth pairing with userdevice 140), input indicative of a password (e.g., a password receivedvia a sensor on the dynamic transaction card and/or a password receivedon a paired mobile device), and/or the like. An operation sensor maychange a display 126 based on received input, conduct a transaction via,for example an EMV chip 122 and/or contactless payment technologiesbased on received input, attempt a pairing of a card 120 and a userdevice 140, and/or the like.

Display 126 may be provided within the transaction card 120. By way ofexample, a display 126 may be activated via a sensor 124. For example, adisplay may be activated via a touch sensor, where a user is required totap a location on dynamic transaction card 120 a specific number oftimes and/or for a specific length of time (e.g., double tap, tripletap, one long tap followed by one short tap, and/or the like). Inresponse to the received sensor input, a display 126 may be activated todisplay particular data, such as data associated with a transactionhistory, account balance, spending limit, budget categories, budgetspending, budget limits, and/or the like.

A dynamic transaction card 120 may include a display driver 218 thattranslates instructions from microcontroller 224 into display images tobe displayed using display components 126. Display driver 218 mayinclude an integrated circuit (IC), a state machine, and/or the likethat provides an interface function between the display and themicrocontroller 224. Display driver 218 may include memory (e.g., RAM,Flash, ROM, and/or the like) and/or firmware that includes font displaydata.

Dynamic transaction card 120 may include firmware 220 and/or abootloader 222. Bootloader 222 may include code to be executed as adynamic transaction card 120 is activated and before any operatingsystem, firmware, or other code is executed on the dynamic transactioncard 120. Bootloader may be activated via a sensor 124 and energystorage component 228 of the dynamic transaction card 120. Bootloader222 may activate and/or load an application and/or program upondetection that card 120 has been inserted into a terminal, charger,and/or the like. Bootloader 222 may only be active during a shortinterval after the card 120 powers up. Card 120 may also be activatedusing program code that may be flashed directly to a microprocessor suchas microcontroller 224, EMV processor 122, and/or the like. Card 120 maynot use a bootloader 222 but instead may cycle between a sleep state andan active state using program code and/or memory.

A dynamic transaction card 120 may include microcontroller 224 andantenna 226. Antenna 226 may include, for example, a loop antenna, afractal antenna, and/or the like. Antenna 226 may transmit to andreceive signals from a mobile device, such as user device 140, toconduct transactions and display data as described throughout thespecification. Microcontroller 224 may communicate with EMV chip 122,applet 208, applet integration 210, sensor(s) 124, power management 230,antenna 226, energy storage component 228, display 126, display driver218, firmware 220, bootloader 222, and/or any other component of dynamictransaction card 120. Microcontroller 224 may control the cardoperations to conduct transactions and/or display data as describedthroughout this specification.

Dynamic transaction card 120 may include an energy storage component228. Although energy storage component is depicted as a singlecomponent, energy storage component 228 may include a series of energystorage components. By way of example, energy storage component 228 mayinclude a lithium polymer battery, a lithium-metal battery,lithium-ceramic battery, and/or any other type of battery.

Dynamic transaction card 120 may include a power management component230 that may manage the charging and discharging of energy storagecomponent 228. Power management component 230 may convert voltage to apredetermined level in order to operate dynamic transaction card 120 asdiscussed throughout the specification. Power management component 230and/or energy storage 228 may include, for example, solar power cells toconvert solar energy into an electrical current within a solar panel.Power management component 230 and/or energy storage component 228 mayinclude connections to sensors 124 to receive input and activate dynamictransaction card 120 (e.g., motion input, thermal input, manual input,touch input, and/or the like).

One of ordinary skill will recognize in light of the present disclosurethat dynamic transaction card 120 may be passively powered (withoutenergy storage component 228 or another local power supply). Forexample, power management component 230 can control power received fromthe merchant system 150 to power dynamic transaction card 120, such aswhen the dynamic transaction card is inserted into a transactionterminal. However, this is merely an example and, in some cases, dynamictransaction card 120 may be passively powered by NFC or another wirelesssignal. In some cases, power management component 230 may utilize thepassively-derived power to charge energy storage component 228.

A flexible printed circuit board (PCB) 232 may be included in dynamictransaction card 120. PCB 232 may include a PCB mounted in a flexibleplastic substrate, such as for example, a polyimide, polyether etherketone, and/or a transparent conductive polyester film. Dynamictransaction card 120 may include a chassis 234 as a frame or supportingstructure. Chassis 234 may be a mount for a flexible PCB 232 and may beconstructed out of flexible or semi-flexible material as well. Chassis234 may be included within or separate from a card backing 236. Cardbacking 236 may be made of similar material to that of the output layer202 and/or the top protective layer 204. Card backing 236 may include amagnetic stripe that may be read using a magnetic stripe reader. Amagnetic stripe may store tracks of data that are used to conduct atransaction using a dynamic transaction card 120. The tracks of data mayinclude a first track capable of storing alphanumeric characters as wellas symbols (e.g., ?, !, &, #, and/or the like), such as account numbers,account holder name, expiration data, security data, and/or otheraccount and/or card related data. The tracks of data may include asecond track capable of storing numeric characters such as accountnumbers, expiration data, security data, and/or other account and/orcard related data. The tracks of data may include a third track of datacapable of storing numeric characters such as an account number, a PIN,a country code, a currency code, an authorization amount, a balanceamount, and/or other account and/or card related data.

A magnetic stripe may be dynamically altered. For example, a dynamictransaction card 120 that is paired to a mobile device via, for example,Bluetooth, BLE, RFID, WiFi Direct and/or other wireless technologies,may receive new track data. The new track data may be unformatted,encrypted, encoded, and/or the like when the new track data istransmitted from the mobile device to the dynamic transaction card 120.Upon receipt of the new track data, the new track data may be routed toa microprocessor, such the processor of EMV chip 122 and/ormicrocontroller 224. EMV chip 122 and/or microcontroller 224 mayconvert, decrypt, and/or decode the received new track data to ensurecompliance with any standards. Once decrypted, decoded, and/orformatted, the new track data may be save on the tracks of the magneticstripe. The magnetic stripe may be deleted and then the new track datamay be recorded onto the tracks. In this manner, track data stored on amagnetic stripe may be altered at any time upon pairing a dynamictransaction card 120 with a mobile device (e.g., user device 140).

FIG. 3 illustrates a system associated with the use of a dynamictransaction card 120. The example system 300 in FIG. 3 may enable a userdevice 140 to provide data updates to a dynamic transaction card 120 viaa short-range communication. For example, data received at user device140 may be transmitted to dynamic transaction card 120 where it isreceived via antenna 226. Data may be received and/or transmitted using,for example a mobile banking application that maintains and/or creates asecure connection with a financial institution to send and/or receivedata related to an account associated with the financial institution.For example, a mobile banking application include send and/or receivedata related to a credit account, a debit account, a prepaid account, aloyalty account, a rewards account, and/or the like. Data may alsoinclude track data that may be updated upon demand.

Upon activation of dynamic transaction card via, for example, sensor124, a data request may be transmitted to a user device 140 for updatedinformation, where user device 140 may request updated data from afinancial institution described in FIG. 3 . Data received at dynamictransaction card 120 may be stored on transaction card 120 and/or may bedisplayed via display 126.

FIG. 4 is a timing diagram 400 illustrating a method according to anexample. The method may be performed, as an example, by dynamictransaction card 120, account provider system 130, and user device 140.Referring to FIG. 4 , user device 140 may determine 405 a currentlocation. For example, user device 140 may include a GPS system that candetermine a geographic location of the user device 140. In some cases,user device 140 can determine a business located at the GPS location andutilize the business information as a location. In some cases, abusiness (e.g., a store or a merchant) may output signals (e.g., throughbeacons) indicating the location or name of the business. User device140 may be configured to retrieve and decode the transmitted informationto determine the location.

User device 140 requests 410 location verification from account providersystem 130. For example, user device 140 may transmit the locationinformation to account provider system 130, and request verificationthat there is are no security issues for the location. For example, userdevice 140 may transmit the location information to determine if thecurrent location has a higher crime rate, or a higher rate regardingparticular crimes, such as pick-pocketing.

Account provider system 130 determines 415 whether there are potentialissues with the current location. For example, account provider system130 may maintain a database of potential security issues by location,and search the database for any issues related to the current location.Alternatively, account provider system 130 may communicate with a remotedatabase or security service to determine whether there are anypotential issues with the current location. As an example, accountprovider system 130 may determine whether a merchant at the currentlocation is potentially compromised from a database generated byautomated fraud-detection rules, reporting, and/or investigations. If apotential security issue is identified, account provider system 130reports 420 any identified concerns to user device 140.

User device 140 receives the reported concern and established 425 alocal communication link with dynamic transaction card 120. For example,user device 140 may transmit a request to dynamic transaction card 120using Bluetooth, Bluetooth Low Energy (BLE), RFID, WiFi Direct, and/orNFC technologies. The communication link may be hand-shakingverification between user device 140 and dynamic transaction card 120.User device 140 then commands 430 dynamic transaction card 120 to outputan alert regarding the potential security issue.

Dynamic transaction card 120 outputs 435 an alert related to thepotential security issue. For instance, dynamic transaction card 120 mayoutput a red light (e.g., through LED 126) and/or a text alert throughdisplay 126. A user/customer may identify the alert and may actaccordingly. For example, the user may change payment methods, declineto proceed with a transaction, and/or be more cognizant or diligent ofpotential risks. In some cases, account provider system 130 may transmita temporary transaction card number to user device 140, which userdevice 140 then forwards to dynamic transaction card 120. Dynamictransaction card 120 may utilize the temporary card number lieu of itspermanent card number, for example, if the merchant is suspected to havesecurity issues. The user may determine to use the temporary card numberthrough input, e.g., through an input to sensor 124.

FIG. 5 is a timing diagram 500 illustrating a method according to anexample. The method may be performed, as an example, by dynamictransaction card 120, account provider system 130, user device 140, andmerchant system 150. Referring to FIG. 5 , user device 140 may determine505 a current location and requests 510 location verification fromaccount provider system 130. Account provider system 130 then determines515 whether there are potential issues with the current location.Determining 505 a location, requesting 510 location verification anddetermining 515 potential issues may be similar to similar processesdiscussed above with reference to FIG. 4 .

Merchant system 150 (e.g., a PoS device) and dynamic transaction card102 may initiate a transaction. For example, a user may insert dynamictransaction card 120 into a card-reading terminal. Merchant system 150and dynamic transaction card 120 may exchange information (e.g., cardnumber, validation code, encryption codes) to effectuate a transaction.Merchant system 150 may request 525 transaction authorization fromaccount provider system 130, for example, over a payment network.Account provider system may then authorize 530 the transaction, butinclude an alert for dynamic transaction card 120. The alert can bebased on the potential issue determined from the location informationprovided by user device 140. The merchant system 150 may finalize 535the purchase and transmit the alert to the dynamic transaction card. Inthis way, a payment terminal or other merchant system 150 may beleveraged to enhance the capabilities of the dynamic transaction card120. The dynamic transaction card can then output 540 the alert, forexample, similar to that described above with reference to FIG. 4 .

FIG. 6 is a timing diagram 600 illustrating a method according to anexample. The method may be performed, as an example, by dynamictransaction card 120, account provider system 130, user device 140, andmerchant system 150. Referring to FIG. 6 , merchant system 150 (e.g., aPoS device) and dynamic transaction card 102 may initiate a transaction.For example, a user may insert dynamic transaction card 120 into acard-reading terminal. Merchant system 150 and dynamic transaction card120 may exchange information (e.g., card number, validation code,encryption codes) to effectuate a transaction. Merchant system 150 maytransmit 610 location information to dynamic transaction card 120. Forexample, merchant system 150 may provide geographic coordinates (e.g.,GPS coordinates), a street address, or the like to dynamic transactioncard 120. In some cases, the location information could include amerchant identifier (merchant ID) corresponding to the particularmerchant and/or merchant system 150.

Dynamic transaction card 120 then establishes 615 a communication link,e.g., a local communication link, with user device 140. For example,dynamic transaction card 120 may emit a short-range signal detectable byuser device 140 using Bluetooth, Bluetooth Low Energy (BLE), RFID, WiFiDirect, and/or NFC technologies. The communication link may behand-shaking verification between user device 140 and dynamictransaction card 120. Dynamic transaction card then provides 620 thelocation identification to user device 140.

User device 140 requests 625 location verification from account providersystem 130. For example, user device 140 may transmit the locationinformation to account provider system 130, and request verificationthat there is are no security issues for the location. For example, userdevice 140 may transmit the location information to determine if thecurrent location has a higher crime rate, or a higher rate regardingparticular crimes, such as pick-pocketing.

Account provider system 130 determines 630 whether there are potentialissues with the current location. For example, account provider system130 may maintain a database of potential security issues by location,and search the database for any issues related to the current location.Alternatively, account provider system 130 may communicate with a remotedatabase or security service to determine whether there are anypotential issues with the current location. As an example, accountprovider system 130 may determine whether a merchant at the currentlocation is potentially compromised from a database generated byautomated fraud-detection rules, reporting, and/or investigations. If apotential security issue is identified, account provider system 130reports 635 any identified concerns to user device 140.

User device 140 then commands 640 dynamic transaction card 120 to outputan alert regarding the potential security issue, e.g., utilizing thecommunication link. Dynamic transaction card 120 outputs 645 an alertrelated to the potential security issue. For instance, dynamictransaction card 120 may output a red light (e.g., through LED 126)and/or a text alert through display 126. A user/customer may identifythe alert and may act accordingly. For example, the user may changepayment methods, decline to proceed with a transaction, and/or be morecognizant or diligent of potential risks. In some cases, accountprovider system 130 may transmit a temporary transaction card number touser device 140, which user device 140 then forwards to dynamictransaction card 120. Dynamic transaction card 120 may utilize thetemporary card number lieu of its permanent card number, for example, ifthe merchant is suspected to have security issues. The user maydetermine to use the temporary card number through input, e.g., throughan input to sensor 124. In some cases, account provider system 130 maytransmit an alert to user device 140 such that user device 140 outputs anotification additionally to dynamic transaction card 120.

FIG. 7 is a timing diagram 700 illustrating a method according to anexample. The method may be performed, as an example, by dynamictransaction card 120, account provider system 130, user device 140, andmerchant system 150. Referring to FIG. 7 , merchant system 150 (e.g., aPoS device) and dynamic transaction card 102 may initiate 705 atransaction, and merchant system 150 may transmit 710 locationinformation to dynamic transaction card 120. Dynamic transaction card120 then establishes 615 a communication link, e.g., a localcommunication link, with user device 140 and transmits 720 the locationinformation to user device 140. User device requests 725 locationverification from account provider system 130. Account provider system130 then determines 730 whether there are potential issues with thecurrent location. Initiating 705 a purchase, transmitting 710 locationinformation, establishing 715 a communication link location,transmitting 720 location information, requesting 725 locationverification and determining 730 potential issues may be similar tosimilar processes discussed above with reference to FIG. 6 .

Merchant system 150 may request 740 transaction authorization fromaccount provider system 130, for example, over a payment network.Account provider system 130 may then authorize 745 the transaction, butinclude an alert for dynamic transaction card 120. The alert can bebased on the potential issue determined from the location informationprovided by user device 140. The merchant system 150 may finalize 750the purchase and transmit the alert to the dynamic transaction card. Inthis way, a payment terminal or other merchant system 150 may beleveraged to enhance the capabilities of the dynamic transaction card120. The dynamic transaction card can then output 755 the alert, forexample, similar to that described above with reference to FIG. 6 .

While in FIGS. 5-7 account provider system 130 authorizes 530/640/745the transaction, this is merely an example. In some cases, accountprovider system 130 may decline the transaction, and provide an alert todynamic transaction card 120 through the merchant system 150 indicatingwhy the transaction was declined (e.g., based on the determinedpotential issue). These and other changes would be apparent to one ofordinary skill in light of the present disclosure.

An embodiment of the present disclosure may be implemented according toat least the following:

Clause 1: A dynamic transaction card including: one or more lightemitting elements; a transceiver; and an embedded microprocessorconfigured to: receive, from a transaction terminal, a locationinformation corresponding to a current location of the transactionterminal; wirelessly transmit, via the transceiver and to a mobiledevice, the location information; receive an indication that alocation-specific security concern exists; and in response to receivingthe indication, control the one or more light emitting elements todisplay a visual indication corresponding to the location-specificsecurity concern.

Clause 2: The dynamic transaction card of clause 1, wherein theindication that location-specific security concern exists is receivefrom the mobile device via the transceiver.

Clause 3: The dynamic transaction card of clause 2, wherein the mobiledevice wirelessly transmits the location information to a backend systemfor determining whether location-specific security concern exists.

Clause 4: The dynamic transaction card of clause 1, wherein theindication that the location-specific security concern exists isreceived from the transaction terminal.

Clause 5: The dynamic transaction card of any of clauses 1-4, whereinthe embedded microprocessor is further configured to: receive, from themobile device, a temporary transaction account number; and provide thetemporary transaction account number to the transaction terminal toeffectuate a purchase in response to the location-specific securityconcern existing.

Clause 6: The dynamic transaction card of any of clauses 1-5, whereinthe location information includes a merchant identifier corresponding toa merchant associated with the transaction terminal.

Clause 7: The dynamic transaction card of any of clauses 1-6, whereinthe microprocessor is configured to receive the location informationfrom the transaction terminal during a transaction authorizationattempt.

Clause 8: A method including: receiving, at a backend system, atransaction request for a dynamic transaction card; receiving, at thebackend system, location information corresponding to the transactionrequest; determining, by the backend system, that a location-specificsecurity concern exists; and instructing the dynamic transaction card tooutput a visual indication that the location-specific security concernexists.

Clause 9: The method of clause 8, wherein the location information isreceived as part of the transaction request.

Clause 10: The method of clause 8 or clause 9, wherein the backendsystem instructs the dynamic transaction card to output the visualindication that the location-specific security concern exists through atransaction terminal in communication with the dynamic transaction card.

Clause 11: The method of clause 8 or clause 9, wherein the backendsystem instructs the dynamic transaction card to output the visualindication that the location-specific security concern exists through amobile device associated with the dynamic transaction card.

Clause 12: The method of clause any of clauses 8-11, wherein the dynamictransaction card receives the location information from a transactionterminal associated with the transaction request and transmits thelocation information to a mobile device associated with the dynamictransaction card, and the backend system receives the locationinformation from the mobile device.

Clause 13: The method of any of clauses 8-12, wherein the locationinformation includes a merchant identifier corresponding to a merchantassociated with the transaction request.

Clause 14: A mobile device including: a transceiver configured tocommunicate with a dynamic transaction card; a processor; and a memoryhaving stored thereon computer instructions that, when executed by theprocessor, control the processor to: determine a location informationassociated with a current location of the dynamic transaction card;output, to a backend system, the location information; receive, from thebackend system, an indication that a location-specific security concernexists; and output, to the dynamic transaction card, an instruction todisplay a visual indication that the location-specific security concernexists.

Clause 15: The mobile device of clause 14 further including a globalpositioning system (GPS), wherein the instructions, when executed by theprocessor, further control the processor to: identify a current locationof the mobile device based on the GPS as the location information.

Clause 16: The mobile device of clause 15, when executed by theprocessor, further control the processor to determine a merchantidentifier based on a merchant location corresponding the currentlocation of the mobile device and output the merchant identifier as thelocation information to the backend system.

Clause 17: The mobile device of any of clauses 14-16, wherein theinstructions, when executed by the processor, control the processor tooutput the instruction to display the visual indication that thelocation-specific security concern exists prior to an attemptedtransaction using the dynamic transaction card.

Clause 18: The mobile device of any of clauses 14-16, wherein thedynamic transaction card receives the location information from atransaction terminal associated with a merchant as part of an attemptedtransaction, and the mobile device receives the location informationfrom the dynamic transaction card.

Clause 19: The mobile device of any of clauses 14-18, wherein thelocation information includes a merchant identifier.

Clause 20: The mobile device of any of clauses 14-19, wherein theinstructions, when executed by the processor, control the processor to:receive, from the backend system, a temporary transaction accountnumber; and provide the temporary transaction account number to thedynamic transaction card to effectuate a purchase in response to thelocation-specific security concern existing.

Example Use Case

The following example use case describes examples of a typical flowpatterns. It is intended solely for explanatory purposes and not inlimitation. A financial institution may subscribe to a blockchainnetwork to which several other unaffiliated financial institutions arealso subscribers. The blockchain network may be a distributed networkand include a ledger. The blockchain network may track transactions byaccount-holders at one or more of the financial institutions to monitorattempted money-laundering or counterfeit transactions.

An account-holder “AH” may have a credit or debit account with afinancial institution. AH can access the account utilizing a dynamictransaction card provided by the financial institution. AH may bepreparing to make a purchase using the dynamic transaction card and anearby mobile device (e.g., a smartphone) associated with AH.

As an example, when AH walks into the store, the mobile devicedetermines that AH is likely to be making a purchase and alerts thefinancial institution (e.g., through an application executing on themobile device) of AH' s current location. The financial institution thendetermines whether there are any potential security concerns with thecurrent location. If one or more security concerns are found, thefinancial institution will instruct the mobile device to pair with thedynamic transaction card to issue an alert through the dynamictransaction card.

In another case, when AH walks into the store, the mobile devicedetermines that AH is likely to be making a purchase and alerts thefinancial institution (e.g., through an application executing on themobile device) of AH' s current location. The financial institution thendetermines whether there are any potential security concerns with thecurrent location. If one or more security concerns are found, when AHattempts to make a purchase using the dynamic transaction card, thefinancial institution may communicate with the dynamic transaction cardthrough a point-of-sale device (e.g., a transaction terminal) andinstruct the dynamic transaction card to issue an alert through thedynamic transaction card.

In another case, when AH attempts to make a purchase using the dynamictransaction card, the dynamic transaction card may communicate with apoint-of-sale device (e.g., a transaction terminal) to determine acurrent location (e.g., a geographic location or a merchant identifier).The dynamic transaction card may pair with the mobile device and providethis location information to the mobile device. The mobile device alertsthe financial institution (e.g., through an application executing on themobile device) of AH' s current location. The financial institution thendetermines whether there are any potential security concerns with thecurrent location. If one or more security concerns are found, when AH,the financial institution may communicate with the dynamic transactioncard either through the mobile device or the transaction terminal toissue an alert to

AH.

What is claimed is:
 1. A method comprising: receiving, at a backendsystem, a transaction request for a dynamic transaction card; receiving,at the backend system, location information corresponding to thetransaction request; determining, by the backend system, that alocation-specific security concern exists; and instructing the dynamictransaction card to output a visual indication that thelocation-specific security concern exists.
 2. The method of claim 1,wherein the location information is received as part of the transactionrequest.
 3. The method of claim 1, wherein the location informationcorresponds to a current location of the transaction terminal.
 4. Themethod of claim 1, wherein the backend system instructs the dynamictransaction card to output the visual indication that thelocation-specific security concern exists through a transaction terminalin communication with the dynamic transaction card.
 5. The method ofclaim 1, wherein the backend system instructs the dynamic transactioncard to output the visual indication that the location-specific securityconcern exists through a mobile device associated with the dynamictransaction card.
 6. The method of claim 1, wherein: the dynamictransaction card receives the location information from a transactionterminal associated with the transaction request and transmits thelocation information to a mobile device associated with the dynamictransaction card, and the backend system receives the locationinformation from the mobile device.
 7. The method of claim 1, whereinthe location information comprises a merchant identifier correspondingto a merchant associated with the transaction request.
 8. The method ofclaim 1, wherein the location-specific security concern is that thecurrent location has a higher crime rate.
 9. The method of claim 1,wherein the location-specific security concern is that the transactionterminal is potentially fraudulently compromised.
 10. A methodcomprising: determining, by a mobile device, a location informationassociated with a current location of the dynamic transaction card;outputting, to a backend system, the location information; receiving,from the backend system, an indication that a location-specific securityconcern exists; and outputting, to the dynamic transaction card, aninstruction to display a visual indication that the location-specificsecurity concern exists.
 11. The method of claim 10, further comprising:identifying a current location of the mobile device based on the GPS asthe location information.
 12. The method of claim 11, furthercomprising: determining a merchant identifier based on a merchantlocation corresponding the current location of the mobile device; andoutputting the merchant identifier as the location information to thebackend system.
 13. The method of claim 10, further comprising:displaying the visual indication that the location-specific securityconcern exists prior to an attempted transaction using the dynamictransaction card.
 14. The method of claim 10, wherein: the dynamictransaction card receives the location information from a transactionterminal associated with a merchant as part of an attempted transaction,and the mobile device receives the location information from the dynamictransaction card.
 15. The method of claim 10, wherein the locationinformation comprises a merchant identifier.
 16. The method of claim 10,further comprising: receiving, from the backend system, a temporarytransaction account number; and providing the temporary transactionaccount number to the dynamic transaction card to effectuate a purchasein response to the location-specific security concern existing.
 17. Amethod comprising: receiving, from a dynamic transaction card, alocation information corresponding to a current location of atransaction terminal; transmitting, from a mobile device to a backendsystem, the location information; determining, by the backend system,from the location information, that a that a location-specific securityconcern exists; and transmitting, to the dynamic transaction card, aninstruction to display a visual indication that the location-specificsecurity concern exists.
 18. The method of claim 17, wherein thelocation information is associated with a transaction request.
 19. Themethod of claim 17, wherein the location information comprises amerchant identifier corresponding to a merchant associated with thetransaction request.
 20. The method of claim 17, further comprising:determining a merchant identifier based on a merchant locationcorresponding the current location of the mobile device; and outputtingthe merchant identifier as the location information to the backendsystem.